Re: COM+ and NetworkCredential problem
From: Willy Denoyette [MVP] (willy.denoyette_at_telenet.be)
Date: 08/30/05
- Next message: Craig Vedur: "how to get all groups from AD?"
- Previous message: Hans Kesting: "Re: The ASP.NET FAQ..."
- In reply to: surya: "COM+ and NetworkCredential problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 30 Aug 2005 15:38:53 +0200
"surya" <suryanarayanan.varadarajan@honeywell.com> wrote in message
news:%231k6GHSrFHA.1028@TK2MSFTNGP12.phx.gbl...
> Hi,
>
> I have a COM+ out of proc service that is configured to impersonate the
> user
> making the call to the COM+ service. Is there a way to create a
> NetworkCredential object based on the current thread's security? Using
> System.Net.CredentialCache.DefaultCredentials always returns the
> credentials
> of the user configured to run the out of proc COM+ server and not the
> credentials of the user set on the current thread.
>
> Regards
> Surya
>
>
>
Impersonate != delegate. So you need to select delegate a impersonation
level, but:
- the client has to specify during the initial authentication (using
Kerberos) that it allows it's identity to be delegated (this is the default
for AD accounts) , and
- you need to run in a Kerberos realm,
- and the server needs to be trusted for delegation i the AD (not set by
default).
Willy.
PS. please, don't cross-post to half of microsoft NG's, you question relates
to .NET Microsoft.public.dotnet.framework.component_services and possibly to
Microsoft.public.platformsd.component_svcs only.
- Next message: Craig Vedur: "how to get all groups from AD?"
- Previous message: Hans Kesting: "Re: The ASP.NET FAQ..."
- In reply to: surya: "COM+ and NetworkCredential problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
